Service-to-service authentication for Automation APIs


Some of the functionality described in this release plan has not been released. Delivery timelines may change and projected functionality may not be released (see Microsoft policy). Learn more: What's new and planned

Enabled for Public preview General availability
Admins, makers, or analysts, automatically - Oct 2020

Business value

Service-to-service authentication will be supported for Automation APIs in Business Central.

Feature details

For supporting Automation scenarios in Business Central, an application permission scope is added, called Automation.ReadWrite.All.

This will allow service-to-service authentication, having external services connect as an application without impersonating normal users. Using OAuth Client Credentials flow, an app token with Automation.ReadWrite.All scope can then be used to access Business Central.

Apps need to be registered in Business Central and the OAuth consent flow has to be completed before Business Central can be accessed.